hpe:switch:5500:5500e:configuration_example_script
# sysname 5500G # undo password-control aging enable undo password-control length enable undo password-control history enable password-control login-attempt 3 exceed lock-time 120 # super password level 1 cipher $c$3$brq92rqeMFivI2ga12hJitcEYjBHhjYdxdn7zkQ= super password level 2 cipher $c$3$bHRmAD3+Xxk/ZQ0rPM0i9eWQRNZ1U0K47E9Q+6M= super password level 3 cipher $c$3$Xe2U3vPHxx6Kd92CPmgWxrGUNsbcAx9M53R2NrU= # local-server nas-ip 127.0.0.1 key cipher $c$3$EgRcOuAXjiP5o1soj8wDrYYFjHKMrjE= # dhcp-server 1 ip 192.168.0.247 # lldp enable # igmp-snooping enable # udp-helper enable # fabric member-auto-update software enable # radius scheme system # domain system # local-user admin password cipher $c$3$S/Fdz3PC//5xaF2PgLolEzPTCVrUA2ihbmXSHaE= service-type ssh telnet terminal level 3 local-user manager password cipher $c$3$ZRw9HHWsaaXEm7YVtKrb/brsqBZf88kjC5DxeDc= service-type ssh telnet terminal level 2 local-user monitor password cipher $c$3$k8zt7rQSrveHugBJHID7sibbmlcuhAVK/RThdE8= service-type ssh telnet terminal level 1 # stp mode stp stp instance 0 root primary stp bpdu-protection stp disable # acl number 2000 description XXX rule 0 permit source 192.168.0.0 0.0.0.255 # acl number 3997 rule 0 permit ip dscp ef rule 1 permit tcp destination-port eq www rule 2 permit udp destination-port eq snmp rule 3 permit udp destination-port eq snmptrap rule 4 permit ip dscp cs6 rule 5 permit ip dscp cs7 # acl number 4999 rule 0 permit type 8868 ffff rule 1 permit source 00e0-bb00-0000 ffff-ff00-0000 rule 2 permit source 0003-6b00-0000 ffff-ff00-0000 rule 3 permit source 00e0-7500-0000 ffff-ff00-0000 rule 4 permit source 00d0-1e00-0000 ffff-ff00-0000 rule 5 permit source 0001-e300-0000 ffff-ff00-0000 rule 6 permit source 000f-e200-0000 ffff-ff00-0000 rule 7 permit source 0060-b900-0000 ffff-ff00-0000 rule 8 deny dest 0000-0000-0000 ffff-ffff-ffff # qos-profile default packet-filter inbound link-group 4999 rule 8 traffic-priority inbound ip-group 3997 rule 0 cos voice traffic-priority inbound ip-group 3997 rule 4 cos network-management traffic-priority inbound ip-group 3997 rule 5 cos network-management traffic-priority inbound link-group 4999 rule 0 dscp ef cos voice traffic-priority inbound link-group 4999 rule 1 dscp ef cos voice traffic-priority inbound link-group 4999 rule 2 dscp ef cos voice traffic-priority inbound link-group 4999 rule 3 dscp ef cos voice traffic-priority inbound link-group 4999 rule 4 dscp ef cos voice traffic-priority inbound link-group 4999 rule 5 dscp ef cos voice traffic-priority inbound link-group 4999 rule 6 dscp ef cos voice traffic-priority inbound link-group 4999 rule 7 dscp ef cos voice # vlan 1 description VLAN1 name VLAN1 igmp-snooping enable igmp-snooping querier # vlan 2 description VLAN2 name VLAN2 igmp-snooping enable igmp-snooping querier # vlan 3 description VLAN3 name VLAN3 igmp-snooping enable igmp-snooping querier # vlan 4 description VLAN4 name VLAN4 igmp-snooping enable igmp-snooping querier # vlan 5 description VLAN5 name VLAN5 igmp-snooping enable igmp-snooping querier # vlan 10 description VLAN10 name VLAN10 igmp-snooping enable igmp-snooping querier # vlan 20 description VLAN20 name VLAN20 igmp-snooping enable igmp-snooping querier # vlan 21 description VLAN21 name VLAN21 igmp-snooping enable igmp-snooping querier # vlan 22 description VLAN22 name VLAN22 igmp-snooping enable igmp-snooping querier # vlan 31 description VLAN31 name VLAN31 igmp-snooping enable igmp-snooping querier # vlan 41 description VOIP name VOIP igmp-snooping enable igmp-snooping querier # vlan 56 description VLAN56 name VLAN56 igmp-snooping enable igmp-snooping querier # vlan 100 description VLAN100 name VLAN100 igmp-snooping enable igmp-snooping querier # interface Vlan-interface1 description vlan Default ip address 10.57.0.1 255.255.255.0 # interface Vlan-interface2 description VLAN2 ip address 192.168.1.1 255.255.255.0 # interface Vlan-interface5 ip address 192.168.5.1 255.255.255.0 # interface Vlan-interface10 description VLAN10 ip address 192.168.10.1 255.255.254.0 dhcp-server 1 # interface Vlan-interface21 ip address 192.168.21.1 255.255.255.0 dhcp-server 1 # interface Vlan-interface22 ip address 192.168.22.2 255.255.255.0 # interface Vlan-interface31 description VLAN31 ip address 192.168.32.1 255.255.248.0 dhcp-server 1 # interface Vlan-interface41 description VLAN41 ip address 192.168.41.1 255.255.255.0 dhcp-server 1 # interface Vlan-interface56 description VLAN56 ip address 192.168.56.1 255.255.248.0 dhcp-server 1 # interface Vlan-interface100 description VLAN100 ip address 192.168.0.1 255.255.255.0 # interface Aux1/0/0 # interface GigabitEthernet1/0/1 broadcast-suppression pps 3000 port access vlan 21 # interface GigabitEthernet1/0/2 broadcast-suppression pps 3000 port access vlan 21 # interface GigabitEthernet1/0/3 broadcast-suppression pps 3000 port access vlan 21 # interface GigabitEthernet1/0/4 stp edged-port enable broadcast-suppression pps 3000 port access vlan 21 apply qos-profile default # interface GigabitEthernet1/0/5 broadcast-suppression pps 3000 port access vlan 21 # interface GigabitEthernet1/0/6 stp edged-port enable broadcast-suppression pps 3000 port access vlan 21 apply qos-profile default # interface GigabitEthernet1/0/7 broadcast-suppression pps 3000 port access vlan 100 description XXX # interface GigabitEthernet1/0/8 stp edged-port enable broadcast-suppression pps 3000 port access vlan 21 apply qos-profile default # interface GigabitEthernet1/0/9 broadcast-suppression pps 3000 port access vlan 21 # interface GigabitEthernet1/0/10 stp edged-port enable broadcast-suppression pps 3000 port access vlan 21 apply qos-profile default # interface GigabitEthernet1/0/11 broadcast-suppression pps 3000 port access vlan 21 # interface GigabitEthernet1/0/12 stp edged-port enable broadcast-suppression pps 3000 port access vlan 21 apply qos-profile default # interface GigabitEthernet1/0/13 stp edged-port enable broadcast-suppression pps 3000 port access vlan 21 apply qos-profile default # interface GigabitEthernet1/0/14 stp edged-port enable broadcast-suppression pps 3000 port access vlan 21 apply qos-profile default # interface GigabitEthernet1/0/15 broadcast-suppression pps 3000 port access vlan 21 # interface GigabitEthernet1/0/16 broadcast-suppression pps 3000 port access vlan 21 # interface GigabitEthernet1/0/17 broadcast-suppression pps 3000 port access vlan 21 # interface GigabitEthernet1/0/18 stp edged-port enable broadcast-suppression pps 3000 port access vlan 21 apply qos-profile default # interface GigabitEthernet1/0/19 broadcast-suppression pps 3000 port access vlan 21 # interface GigabitEthernet1/0/20 port link-type hybrid port hybrid vlan 3 to 4 10 31 56 100 tagged port hybrid vlan 20 untagged undo port hybrid vlan 1 port hybrid pvid vlan 20 broadcast-suppression pps 3000 description XXX # interface GigabitEthernet1/0/21 broadcast-suppression pps 3000 port access vlan 100 # interface GigabitEthernet1/0/22 port link-type hybrid port hybrid vlan 3 to 4 10 31 56 100 tagged port hybrid vlan 20 untagged undo port hybrid vlan 1 port hybrid pvid vlan 20 broadcast-suppression pps 3000 description XXX # interface GigabitEthernet1/0/23 stp edged-port enable broadcast-suppression pps 3000 apply qos-profile default # interface GigabitEthernet1/0/24 stp edged-port enable broadcast-suppression pps 3000 apply qos-profile default # interface GigabitEthernet1/0/25 broadcast-suppression pps 3000 shutdown port access vlan 21 apply qos-profile default # interface GigabitEthernet1/0/26 broadcast-suppression pps 3000 # interface GigabitEthernet1/0/27 broadcast-suppression pps 3000 port access vlan 5 description XXX # interface GigabitEthernet1/0/28 broadcast-suppression pps 3000 port access vlan 5 # interface GigabitEthernet1/0/29 port link-type trunk port trunk permit vlan all broadcast-suppression pps 3000 description XXX # interface GigabitEthernet1/0/30 port link-type trunk port trunk permit vlan all broadcast-suppression pps 3000 description XXX # interface GigabitEthernet1/0/31 port link-type hybrid port hybrid vlan 3 to 4 10 31 56 100 tagged port hybrid vlan 20 untagged undo port hybrid vlan 1 port hybrid pvid vlan 20 broadcast-suppression pps 3000 description XXX # interface GigabitEthernet1/0/32 port link-type hybrid port hybrid vlan 3 to 4 10 31 56 100 tagged port hybrid vlan 20 untagged undo port hybrid vlan 1 port hybrid pvid vlan 20 broadcast-suppression pps 3000 description XXX # interface GigabitEthernet1/0/33 port link-type hybrid port hybrid vlan 3 to 4 10 31 56 100 tagged port hybrid vlan 20 untagged undo port hybrid vlan 1 port hybrid pvid vlan 20 broadcast-suppression pps 3000 description XXX # interface GigabitEthernet1/0/34 stp edged-port enable broadcast-suppression pps 3000 port access vlan 10 apply qos-profile default # interface GigabitEthernet1/0/35 broadcast-suppression pps 3000 port access vlan 10 # interface GigabitEthernet1/0/36 broadcast-suppression pps 3000 port access vlan 10 # interface GigabitEthernet1/0/37 port link-type hybrid port hybrid vlan 41 tagged port hybrid vlan 10 100 untagged undo port hybrid vlan 1 port hybrid pvid vlan 100 broadcast-suppression pps 3000 description XXX # interface GigabitEthernet1/0/38 broadcast-suppression pps 3000 port access vlan 10 # interface GigabitEthernet1/0/39 stp edged-port enable duplex full port link-type trunk port trunk permit vlan 1 10 21 to 22 31 flow-control broadcast-suppression pps 3000 port auto-power-down apply qos-profile default # interface GigabitEthernet1/0/40 broadcast-suppression pps 3000 port access vlan 10 # interface GigabitEthernet1/0/41 port link-type hybrid port hybrid vlan 3 to 4 10 31 56 100 tagged port hybrid vlan 20 untagged undo port hybrid vlan 1 port hybrid pvid vlan 20 broadcast-suppression pps 3000 description XXX # interface GigabitEthernet1/0/42 port link-type hybrid port hybrid vlan 3 to 4 10 31 100 tagged port hybrid vlan 20 untagged undo port hybrid vlan 1 port hybrid pvid vlan 20 broadcast-suppression pps 3000 # interface GigabitEthernet1/0/43 port link-type hybrid port hybrid vlan 3 to 4 10 31 100 tagged port hybrid vlan 20 untagged undo port hybrid vlan 1 port hybrid pvid vlan 20 broadcast-suppression pps 3000 # interface GigabitEthernet1/0/44 port link-type hybrid port hybrid vlan 3 to 4 10 31 56 100 tagged port hybrid vlan 20 untagged undo port hybrid vlan 1 port hybrid pvid vlan 20 broadcast-suppression pps 3000 description XXX # interface GigabitEthernet1/0/45 port link-type hybrid port hybrid vlan 3 to 4 10 31 56 100 tagged port hybrid vlan 20 untagged undo port hybrid vlan 1 port hybrid pvid vlan 20 broadcast-suppression pps 3000 description XXX # interface GigabitEthernet1/0/46 port link-type hybrid port hybrid vlan 3 to 4 10 31 56 100 tagged port hybrid vlan 20 untagged undo port hybrid vlan 1 port hybrid pvid vlan 20 broadcast-suppression pps 3000 description XXX # interface GigabitEthernet1/0/47 broadcast-suppression pps 3000 port access vlan 100 # interface GigabitEthernet1/0/48 stp edged-port enable port link-type trunk port trunk permit vlan 1 4 to 5 10 21 to 22 31 broadcast-suppression pps 3000 apply qos-profile default # interface GigabitEthernet1/0/49 stp edged-port enable broadcast-suppression pps 3000 shutdown apply qos-profile default # interface GigabitEthernet1/0/50 stp edged-port enable broadcast-suppression pps 3000 shutdown apply qos-profile default # interface GigabitEthernet1/0/51 broadcast-suppression pps 3000 shutdown port access vlan 100 # interface GigabitEthernet1/0/52 stp edged-port enable port link-type trunk port trunk permit vlan 1 4 to 5 10 21 to 22 31 broadcast-suppression pps 3000 shutdown apply qos-profile default # interface Cascade1/2/1 # interface Cascade1/2/2 # interface Aux2/0/0 # interface GigabitEthernet2/0/1 broadcast-suppression pps 3000 port access vlan 100 description XXX # interface GigabitEthernet2/0/2 broadcast-suppression pps 3000 port access vlan 100 # interface GigabitEthernet2/0/3 stp edged-port enable port link-type trunk port trunk permit vlan all broadcast-suppression pps 3000 description XXX # interface GigabitEthernet2/0/4 stp edged-port enable port link-type hybrid port hybrid vlan 4 100 tagged port hybrid vlan 31 untagged undo port hybrid vlan 1 port hybrid pvid vlan 31 broadcast-suppression pps 3000 description XXX lacp enable # interface GigabitEthernet2/0/5 broadcast-suppression pps 3000 port access vlan 100 # interface GigabitEthernet2/0/6 port link-type hybrid port hybrid vlan 3 to 4 10 21 to 22 31 41 tagged port hybrid vlan 1 100 untagged port hybrid pvid vlan 100 broadcast-suppression pps 3000 description XXX # interface GigabitEthernet2/0/7 stp edged-port enable port link-type trunk port trunk permit vlan 1 3 to 4 10 22 31 broadcast-suppression pps 3000 # interface GigabitEthernet2/0/8 broadcast-suppression pps 3000 port access vlan 100 description XXX # interface GigabitEthernet2/0/9 stp edged-port enable duplex full port link-type trunk port trunk permit vlan 1 10 31 70 broadcast-suppression pps 3000 description XXX # interface GigabitEthernet2/0/10 port link-type hybrid port hybrid vlan 4 10 31 tagged port hybrid vlan 1 100 untagged port hybrid pvid vlan 100 broadcast-suppression pps 3000 description XXX # interface GigabitEthernet2/0/11 port link-type trunk port trunk permit vlan all broadcast-suppression pps 3000 shutdown # interface GigabitEthernet2/0/12 port link-type trunk port trunk permit vlan all broadcast-suppression pps 3000 shutdown # interface GigabitEthernet2/0/13 stp edged-port enable broadcast-suppression pps 3000 port access vlan 100 # interface GigabitEthernet2/0/14 broadcast-suppression pps 3000 port access vlan 100 # interface GigabitEthernet2/0/15 port link-type trunk port trunk permit vlan all broadcast-suppression pps 3000 description XXX # interface GigabitEthernet2/0/16 port link-type trunk port trunk permit vlan all broadcast-suppression pps 3000 description XXX # interface GigabitEthernet2/0/17 stp edged-port enable broadcast-suppression pps 3000 port access vlan 22 # interface GigabitEthernet2/0/18 port link-type trunk port trunk permit vlan all broadcast-suppression pps 3000 description XXX # interface GigabitEthernet2/0/19 stp edged-port enable broadcast-suppression pps 3000 port access vlan 100 # interface GigabitEthernet2/0/20 broadcast-suppression pps 3000 port access vlan 20 # interface GigabitEthernet2/0/21 port link-type trunk port trunk permit vlan all broadcast-suppression pps 3000 description XXX # interface GigabitEthernet2/0/22 broadcast-suppression pps 3000 port access vlan 100 # interface GigabitEthernet2/0/23 port link-type trunk port trunk permit vlan all broadcast-suppression pps 3000 shutdown # interface GigabitEthernet2/0/24 stp edged-port enable broadcast-suppression pps 3000 shutdown port access vlan 100 # interface GigabitEthernet2/0/25 port link-type trunk port trunk permit vlan all broadcast-suppression pps 3000 description XXX # interface GigabitEthernet2/0/26 port link-type trunk port trunk permit vlan all broadcast-suppression pps 3000 description XXX # interface GigabitEthernet2/0/27 port link-type trunk port trunk permit vlan all broadcast-suppression pps 3000 description XXX # interface GigabitEthernet2/0/28 stp edged-port enable broadcast-suppression pps 3000 port access vlan 100 # interface Cascade2/2/1 # interface Cascade2/2/2 # interface NULL0 # voice vlan 41 enable # ip route-static 0.0.0.0 0.0.0.0 192.168.0.8 preference 60 ip route-static 10.0.0.0 255.255.255.0 192.168.0.8 preference 60 ip route-static 172.16.0.0 255.255.252.0 192.168.0.8 preference 60 ip route-static 172.16.20.0 255.255.255.0 192.168.0.8 preference 60 ip route-static 172.16.30.0 255.255.255.0 192.168.0.8 preference 60 ip route-static 172.16.32.0 255.255.240.0 192.168.0.8 preference 60 ip route-static 172.16.40.0 255.255.255.0 192.168.0.8 preference 60 ip route-static 172.16.40.16 255.255.255.240 192.168.0.8 preference 60 ip route-static 172.16.40.32 255.255.255.240 192.168.0.8 preference 60 ip route-static 172.16.40.48 255.255.255.240 192.168.0.8 preference 60 ip route-static 172.16.40.64 255.255.255.240 192.168.0.8 preference 60 ip route-static 172.16.40.80 255.255.255.240 192.168.0.8 preference 60 ip route-static 172.16.40.144 255.255.255.240 192.168.0.8 preference 60 ip route-static 172.16.40.160 255.255.255.240 192.168.0.8 preference 60 ip route-static 172.16.40.176 255.255.255.240 192.168.0.8 preference 60 ip route-static 172.16.40.192 255.255.255.240 192.168.0.8 preference 60 ip route-static 172.16.40.208 255.255.255.240 192.168.0.8 preference 60 ip route-static 172.16.50.0 255.255.255.252 192.168.0.30 preference 60 ip route-static 172.16.60.0 255.255.255.0 192.168.0.8 preference 60 ip route-static 172.16.70.0 255.255.255.0 192.168.0.8 preference 60 ip route-static 172.16.73.0 255.255.255.0 192.168.0.8 preference 60 ip route-static 172.16.80.0 255.255.255.0 192.168.0.8 preference 60 ip route-static 172.16.83.0 255.255.255.0 192.168.0.8 preference 60 ip route-static 192.168.0.0 255.255.255.0 192.168.10.70 preference 60 ip route-static 192.168.2.0 255.255.255.0 192.168.0.8 preference 60 ip route-static 192.168.3.0 255.255.255.0 192.168.0.8 preference 60 ip route-static 192.168.4.0 255.255.255.0 192.168.0.8 preference 60 ip route-static 192.168.5.0 255.255.255.0 192.168.0.30 preference 60 ip route-static 192.168.5.0 255.255.255.0 192.168.0.5 preference 60 ip route-static 192.168.6.0 255.255.255.0 192.168.0.8 preference 60 ip route-static 192.168.10.0 255.255.254.0 192.168.0.30 preference 60 ip route-static 192.168.10.0 255.255.254.0 192.168.10.70 preference 60 ip route-static 192.168.32.0 255.255.248.0 192.168.0.8 preference 60 ip route-static 192.168.80.0 255.255.255.0 192.168.80.254 preference 60 # snmp-agent snmp-agent local-engineid 8000002B001EC17AC8006877 snmp-agent community read public snmp-agent community write private snmp-agent community write privado snmp-agent community read publico snmp-agent sys-info version all # undo cluster enable # ssh authentication-type default all ssh user manager authentication-type password ssh user manager service-type all ssh user admin authentication-type password ssh user admin service-type all ssh user monitor authentication-type password ssh user monitor service-type all ssh user m authentication-type password ssh user m service-type stelnet # header shell % %************************************ATENCION*********************************** * * Unidad informatica soportada por ITCorporation. * Este es un recursos informatico de uso exclusivo de XXX . * Si usted no es un usuario autorizado para ingresar a este dispositivo * abstengase de hacerlo, ya que todas las actividades pueden ser monitoreadas * o grabadas. Y en caso de descubrirse evidencia de accesos no autorizados, * modificaciones a la informacion, atentados contra la integridad de la * informacion como de la entidad , entre otros, seran denunciadas ante las * autoridades competentes. ******************************************************************************** % header login % %************************************ATENCION*********************************** * * Unidad informatica soportada por ITCorporation. * Este es un recursos informatico de uso exclusivo de XXX . * Si usted no es un usuario autorizado para ingresar a este dispositivo * abstengase de hacerlo, ya que todas las actividades pueden ser monitoreadas * o grabadas. Y en caso de descubrirse evidencia de accesos no autorizados, * modificaciones a la informacion, atentados contra la integridad de la * informacion como de la entidad , entre otros, seran denunciadas ante las * autoridades competentes. ******************************************************************************** % # user-interface aux 0 7 authentication-mode scheme screen-length 22 user-interface vty 0 4 authentication-mode scheme set authentication password cipher $c$3$0wQGhOLNJzvGCn7l4fe2W8RUnPMPT8ZYVPxtf0o= protocol inbound ssh # job ne # return
hpe/switch/5500/5500e/configuration_example_script.txt · Last modified: 2021/12/13 14:21 by aperez